Technologies for blockchain-based data transparency and authentication

ABSTRACT

A method according to one embodiment includes transmitting, by an enterprise system, a data request for user data stored in a software wallet to a software wallet provider, transmitting, by the software wallet provider, an authorization request to an end user device of the user in association with the data request, creating, by the end user device, a transaction signed with a first private cryptographic key to generate a signed transaction, transmitting, by the end user device, the signed transaction to the software wallet provider, signing, by the software wallet provider, the signed transaction with a second private cryptographic key to generate a multi-signed transaction, transmitting, by the software wallet provider, the multi-signed transaction to the enterprise system, and validating, by the enterprise system, the multi-signed transaction using a public cryptographic key associated with the first private cryptographic key and the second private cryptographic key.

BACKGROUND

An “identity” is essentially a collection of details about a person, place, or thing. The identity of a person typically includes details such as the person's first name, last name, date of birth, nationality, global/national/state/regional identifier (e.g., passport number, social security number, tax identification number, driver's license number, etc.). Such global/national/state/regional identifiers are usually issued by centralized entities (e.g., governments, pseudo-governmental organizations, etc.), and are usually stored in centralized databases for verification and controls (e.g., central/state government servers).

Enterprises often define a person's identity as well for various purposes. For example, an enterprise's concept of a person's identity may include the person's own product details, interests, likes and dislikes, preferences, browsing history, interaction history, and any anything else personal and particular to the person in connection with the enterprise. Additionally, similar to the identifiers used by centralized entities such as governments, enterprises may include enterprise-specific user identities that are saved in centralized repositories (e.g., servers). The user typically has no control over or transparent understanding of what data the enterprise has stored and/or what the enterprise is doing with the data.

Because of these issues, users often have disconnected or fragmented online identification experiences, and they almost certainly lose the value, yield, and/or experience that their own data can generate for them. Additionally, enterprises holding user data are subject to frequent vulnerabilities such as data leaks, hacks, and other security risks.

SUMMARY

One embodiment is directed to a unique system, components, and methods for blockchain-based data transparency and/or authentication. Other embodiments are directed to apparatuses, systems, devices, hardware, methods, and combinations thereof for blockchain-based data transparency and/or authentication.

According to an embodiment, a method of blockchain-based multi-signature authentication may include transmitting, by an enterprise system, a data request for user data stored in a software wallet to a software wallet provider, transmitting, by the software wallet provider, an authorization request to an end user device of the user in association with the data request, creating, by the end user device, a transaction signed with a first private cryptographic key to generate a signed transaction, transmitting, by the end user device, the signed transaction to the software wallet provider, signing, by the software wallet provider, the signed transaction with a second private cryptographic key to generate a multi-signed transaction, transmitting, by the software wallet provider, the multi-signed transaction to the enterprise system, and validating, by the enterprise system, the multi-signed transaction using a public cryptographic key associated with the first private cryptographic key and the second private cryptographic key.

In some embodiments, validating the multi-signed transaction may include validating the multi-signed transaction using a 2-of-3 multi-signature blockchain algorithm.

In some embodiments, creating the transaction signed with the first private cryptographic key may include selecting the first private cryptographic key from a set of two private cryptographic keys stored on the end user device in association with the software wallet, the set of two private cryptographic keys including the first private cryptographic key and a third private cryptographic key.

In some embodiments, the public cryptographic key may be able to validate a signed transaction involving the second private cryptographic key and either of the first private cryptographic key or the third private cryptographic key.

In some embodiments, the transaction may be a blockchain transaction.

In some embodiments, the end user device may include a mobile application configured to provide a secure endpoint for interactions with the software wallet.

In some embodiments, the enterprise system may include a contact center system.

According to another embodiment, a system of blockchain-based multi-signature authentication may include at least one processor and at least one memory comprising a plurality of instructions stored thereon that, in response to execution by the at least one processor, causes the system to transmit, by an enterprise system, a data request for user data stored in a software wallet to a software wallet provider, transmit, by the software wallet provider, an authorization request to an end user device of the user in association with the data request, create, by the end user device, a transaction signed with a first private cryptographic key to generate a signed transaction, transmit, by the end user device, the signed transaction to the software wallet provider, sign, by the software wallet provider, the signed transaction with a second private cryptographic key to generate a multi-signed transaction, transmit, by the software wallet provider, the multi-signed transaction to the enterprise system, and validate, by the enterprise system, the multi-signed transaction using a public cryptographic key associated with the first private cryptographic key and the second private cryptographic key.

In some embodiments, to validate the multi-signed transaction may include to validate the multi-signed transaction using a 2-of-3 multi-signature blockchain algorithm.

In some embodiments, to create the transaction signed with the first private cryptographic key may include to select the first private cryptographic key from a set of two private cryptographic keys stored on the end user device in association with the software wallet, the set of two private cryptographic keys including the first private cryptographic key and a third private cryptographic key.

In some embodiments, the public cryptographic key may be able to validate a signed transaction involving the second private cryptographic key and either of the first private cryptographic key or the third private cryptographic key.

In some embodiments, the transaction may be a blockchain transaction.

In some embodiments, the end user device may be a mobile application configured to provide a secure endpoint for interactions with the software wallet.

According to yet another embodiment, a method of blockchain-based data transparency may include requesting, by an enterprise system, user data from an end user device based on an interaction of the enterprise system with the end user device that results in self-execution of computer-executable code on a block of a blockchain, prompting, by the end user device, the user for authorization of the enterprise system to receive the user data, retrieving, by the end user device, the user data from a secure data store in response to authorization of the enterprise system to receive the user data, and transmitting, by the end user device, the user data to the enterprise system.

In some embodiments, the secure data store may include a software wallet of the user.

In some embodiments, the user data may include one or more preferences of the user.

In some embodiments, the method may further include transmitting, from the enterprise system to the end user device, at least one personalized message based on the user data received from the end user device.

In some embodiments, the method further includes receiving, by the end user device, user input indicating that the enterprise system is authorized to receive the user device in response to prompting the user, and retrieving the user data from the secure data stored may include retrieving the user data from the secure data store in response to receiving the user input indicating that the enterprise system is authorized to receive the user device.

In some embodiments, the enterprise system may include a contact center system.

In some embodiments, prompting the user for authorization may include prompting the user for authorization of the enterprise system to receive the user data via a personal bot system executed by the end user device.

This summary is not intended to identify key or essential features of the claimed subject matter, nor is it intended to be used as an aid in limiting the scope of the claimed subject matter. Further embodiments, forms, features, and aspects of the present application shall become apparent from the description and figures provided herewith

BRIEF DESCRIPTION OF THE DRAWINGS

The concepts described herein are illustrative by way of example and not by way of limitation in the accompanying figures. For simplicity and clarity of illustration, elements illustrated in the figures are not necessarily drawn to scale. Where considered appropriate, references labels have been repeated among the figures to indicate corresponding or analogous elements.

FIG. 1 is a simplified block diagram of at least one embodiment of a system for conducting a data transaction between enterprises using a permissioned blockchain infrastructure;

FIG. 2 is a simplified block diagram of at least one embodiment of at least one contact center system of the system of FIG. 1 for conducting a data transaction between enterprises using a permissioned blockchain infrastructure;

FIG. 3 is a simplified block diagram of at least one embodiment of a computing system;

FIG. 4 is a simplified flow diagram of at least one embodiment of a method for conducting a data transaction between enterprises using a permissioned blockchain infrastructure using the system of FIG. 1 ;

FIG. 5 is a simplified flow diagram of at least one embodiment of a method for conducting a data transaction between enterprises using a permissioned blockchain infrastructure using the system of FIG. 1 ;

FIGS. 6-7 are simplified block diagrams of at least one embodiment of a blockchain architecture;

FIG. 8 is a simplified block diagram of at least one embodiment of a smart contract architecture;

FIG. 9 is a simplified flow diagram of at least one embodiment of a method for conducting a data transaction between enterprises using a smart contract;

FIG. 10 is a simplified block diagram of at least one embodiment of a blockchain architecture that implements smart contracts;

FIG. 11 is a simplified block diagram of at least one embodiment of an architecture for automatically completing data transactions using a permissioned blockchain infrastructure;

FIG. 12 is a simplified flow diagram of at least one embodiment of a method for automatically completing data transactions using a permissioned blockchain infrastructure;

FIG. 13 is a simplified flow diagram of at least one embodiment of a method for personalizing a message based on secure user data;

FIG. 14 is a simplified flow diagram of at least one embodiment of a method for facilitating interactions between enterprises and software wallets of users; and

FIG. 15 is a simplified flow diagram of at least one embodiment of a method for blockchain-based multi-signature authentication.

DETAILED DESCRIPTION

Although the concepts of the present disclosure are susceptible to various modifications and alternative forms, specific embodiments have been shown by way of example in the drawings and will be described herein in detail. It should be understood, however, that there is no intent to limit the concepts of the present disclosure to the particular forms disclosed, but on the contrary, the intention is to cover all modifications, equivalents, and alternatives consistent with the present disclosure and the appended claims.

References in the specification to “one embodiment,” “an embodiment,” “an illustrative embodiment,” etc., indicate that the embodiment described may include a particular feature, structure, or characteristic, but every embodiment may or may not necessarily include that particular feature, structure, or characteristic. Moreover, such phrases are not necessarily referring to the same embodiment. It should be further appreciated that although reference to a “preferred” component or feature may indicate the desirability of a particular component or feature with respect to an embodiment, the disclosure is not so limiting with respect to other embodiments, which may omit such a component or feature. Further, when a particular feature, structure, or characteristic is described in connection with an embodiment, it is submitted that it is within the knowledge of one skilled in the art to implement such feature, structure, or characteristic in connection with other embodiments whether or not explicitly described. Additionally, it should be appreciated that items included in a list in the form of “at least one of A, B, and C” can mean (A); (B); (C); (A and B); (B and C); (A and C); or (A, B, and C). Similarly, items listed in the form of “at least one of A, B, or C” can mean (A); (B); (C); (A and B); (B and C); (A and C); or (A, B, and C). Further, with respect to the claims, the use of words and phrases such as “a,” “an,” “at least one,” and/or “at least one portion” should not be interpreted so as to be limiting to only one such element unless specifically stated to the contrary, and the use of phrases such as “at least a portion” and/or “a portion” should be interpreted as encompassing both embodiments including only a portion of such element and embodiments including the entirety of such element unless specifically stated to the contrary.

The disclosed embodiments may, in some cases, be implemented in hardware, firmware, software, or a combination thereof. The disclosed embodiments may also be implemented as instructions carried by or stored on one or more transitory or non-transitory machine-readable (e.g., computer-readable) storage media, which may be read and executed by one or more processors. A machine-readable storage medium may be embodied as any storage device, mechanism, or other physical structure for storing or transmitting information in a form readable by a machine (e.g., a volatile or non-volatile memory, a media disc, or other media device).

In the drawings, some structural or method features may be shown in specific arrangements and/or orderings. However, it should be appreciated that such specific arrangements and/or orderings may not be required. Rather, in some embodiments, such features may be arranged in a different manner and/or order than shown in the illustrative figures unless indicated to the contrary. Additionally, the inclusion of a structural or method feature in a particular figure is not meant to imply that such feature is required in all embodiments and, in some embodiments, may not be included or may be combined with other features.

Referring now to FIG. 1 , in the illustrative embodiment, a system 100 for conducting a data transaction between enterprises using a permissioned blockchain infrastructure includes an end user device 102, a network 104, an enterprise 106, an enterprise 108, an enterprise 110, an enterprise 122, an enterprise 124, an enterprise 126, an oracle system 134, and a secure data store 136. Additionally, in the illustrative embodiment, each of the enterprises 106, 108, 110 is included in or otherwise associated with an enterprise system 112. In some embodiments, each of the enterprises 106, 108, 110 is included in or otherwise associated with an enterprise system 112 such that each of the enterprises 106, 108, 110 may be an “on-chain” enterprise. An on-chain enterprise may be an enterprise that is within the blockchain network described in the present disclosure. In some embodiments, each of enterprises 122, 124, 126 may be “off-chain” enterprises. An off-chain enterprise may be an enterprise that is not within the blockchain network described in the present disclosure. Further, in the illustrative embodiment, the enterprise 106 includes a contact center system 114, the enterprise 108 includes a contact center system 116, the enterprise 110 includes a contact center system 118, the enterprise 122 includes a contact center system 128, the enterprise 124 includes a contact center system 130, and the enterprise 126 includes a contact center system 132. It should be appreciated that references to the enterprise 106 or the enterprise 122 herein may be made for clarity of the description and may be intended to be for illustrative purposes only. Accordingly, in some embodiments, such references to the enterprise 106 may be alternatively made with respect to the enterprise 108 or the enterprise 110 without loss of generality. Similarly, in some embodiments, such references to the enterprise 122 may be alternatively made with respect to the enterprise 124 or the enterprise 126 without loss of generality.

Although only one end user device 102, one network 104, one enterprise system 112, and one oracle system 134 are shown in the illustrative embodiment of FIG. 1 , the system 100 may include multiple end user devices 102, networks 104, enterprise systems 112, and/or oracle systems 134 in other embodiments. For example, in some embodiments, multiple end user devices 102 may be used to access a web-based graphical user interface that permits end users to request data from enterprises 106, 108, 110, 122, 124, 126. Similarly, in some embodiments, the system 100 may include multiple other enterprises 106, 108, 110, 122, 124, 126 and multiple other contact center systems 114, 116, 118, 128, 130, 132. Additionally, it should be appreciated that the enterprise system 112 includes three enterprises 106, 108, 110 by way of example only, and in some embodiments, the enterprise system 112 may include a different number of enterprises. Further, in some embodiments, the contact center systems 114, 116, 118, 126, 128, 130 may be excluded from one or more of the corresponding enterprises 106, 108, 110, 122, 124, 128. For example, in some embodiments, one or more of the enterprises 106, 108, 110, 122, 124, 128 may not be associated with a contact center and, therefore, not include a contact center system.

The system 100 and technologies described herein may permit user data transfer among different enterprises (e.g., the enterprises 106, 108, 110) within an enterprise system (e.g., the enterprise system 112), which may reduce the risks and problems associated with centralized storage systems. The enterprise system 112 includes the enterprises 106, 108, 110 that may be vetted prior to being included in the enterprise system 112, which may allow the enterprises 106, 108, 110 within the enterprise system 112 to receive inter-operability benefits. The permissioned blockchain infrastructure and blockchain network technologies described herein may eliminate the need for third party intermediaries to operate in between enterprises when an enterprise needs to obtain data stored by another enterprise, which also eliminates the risks associated with a third party intermediary (e.g., abuse of power, another third party gaining control over the third party intermediary, etc.). Because various consensus protocols are needed to validate a data transaction, the permissioned blockchain infrastructure and blockchain network may remove the risk of duplicate entry and/or fraud. Each data transaction occurring in the permissioned blockchain infrastructure and blockchain network may be transparent such that the enterprises 106, 108, 110 within the enterprise system 112 may view each data transaction. Therefore, the permissioned blockchain infrastructure and blockchain network technologies described herein may provide a structured, authenticated, confidential, and secured platform to use data concerning a particular end user that other enterprises possess.

Additionally, the blockchain associated with the technologies of the present disclosure may be a valuable dataset to know more about end users as well as provide personalized end user service to the end users (e.g., for contact center operations). With more data being shared about end users, the insights drawn from such data may benefit both the user/customer and the enterprise receiving the request from the end user. Further, the enterprises and the technological platform may use this data to obtain more valuable insights that may improve productivity of such enterprises. Therefore, personalization, predictive and prescriptive analysis, and automation may be unified across enterprises in an enterprise system using the permissioned blockchain infrastructure and blockchain network technologies described herein.

It should be appreciated that each of the end user device 102, network 104, enterprises 106, 108, 110, 122, 124, 126, enterprise system 112, contact center systems 114, 116, 118, 128, 130, 132, and oracle system 134 may be embodied as any type of device/system or collection of devices/systems suitable for performing the functions described herein. More specifically, in the illustrative embodiment, the end user device 102 may be a voice communications device, such as a telephone, a cellular phone, or a satellite phone. The end user device 102 alternatively may be, for example, an electronic tablet, an electronic book reader, a personal digital assistant (PDA), a portable music player, or a computer capable of communication with the enterprise 106. The end user device 102 may have various input/output devices with which a user may interact to provide and receive audio, text, video, and/or other forms of data. The end user device 102 may allow an end user to interact with the enterprise 106 (and/or other devices of the system 100) over the network 104 as described herein.

In some embodiments, the end user device 102 may be embodied as any type of device capable of executing an application and otherwise performing the functions described herein. For example, in the illustrative embodiment, the end user device 102 may be configured to execute an application 120. It should be appreciated that the application 120 may be embodied as any type of application suitable for performing the functions described herein. In particular, in some embodiments, the application 120 may be embodied as a mobile application (e.g., a smartphone application), a cloud-based application, a web application, a thin-client application, and/or another type of application. For example, in some embodiments, the application 120 may serve as a client-side interface (e.g., via a web browser) for a web-based application or service. Additionally, although only one application 120 is shown as being executed by the end user device 102, it should be appreciated that end user device 102 may be configured to execute other applications in order to perform the functions described herein.

In some embodiments, the application 120 may be an automated agent (i.e., a personal bot system) configured to automate interactions with enterprises (e.g., the enterprise 106) and/or other devices/services to achieve particular goals or results as requested by end users (e.g., a request for data) via the end user device 102. The personal bot system may be physically located in, and performed by, the end user device 102 whereas other aspects of the end user-side system may be physically located in, and executed by, a cloud computing service (e.g., the cloud computing service 230 of FIG. 2 ). As one example, an end user may have an issue with her cable internet service and communicate this issue to her personal bot system by speaking or typing a natural language phrase such as: “My internet connection is down. Please contact the cable company for service.” A natural language refers to a language used by humans to communicate with one another (e.g., English, Spanish, French, Chinese, etc.), which is in contrast to artificial or constructed languages such as computer programming languages (e.g., C, Python, JavaScript, assembly language, etc.). The personal bot system interacts with the appropriate enterprise (e.g., the enterprise 106, which in this case, is the cable internet provider) on behalf of the end user to accomplish the end user's request (i.e., to fix the problem). During the interaction, the personal bot system may prompt the end user for additional information requested by the enterprise (e.g., a selection from a set of proposed appointment times for a technician to visit) if the personal bot system does not have access to the information, or the personal bot system may automatically respond to the question based on access to user information (e.g., appointment times may be selected through a detection of available times in the end user's calendar and preferred times specified by the end user, either as part of the request, or as part of a standing general preference).

As another example involving booking flights, when requesting information about the status of current flight reservations, an enterprise (e.g., the enterprise 106) may respond directly to the personal bot system with a list of all flights booked by the end user and associated details. However, in some embodiments, the enterprise (e.g., the enterprise 106) may request additional information based on the information in the initial request. For example, when booking a flight, the airline may respond with a list of flights available from LAX to SFO on May 19 and a list of flights available from SFO to LAX on May 24, along with flight information such as departure times, arrival times, and prices. The personal bot system may then respond to this request for more information with the selection of a particular pair of flights. Similarly, after selecting flights, the enterprise (e.g., the enterprise 106) may request the choice from among a list of available seats. Accordingly, some embodiments of the present disclosure relate to automating back-and-forth interactions between an enterprise (e.g., the enterprise 106) and a personal bot system. In some embodiments, automatic back-and-forth interactions between a personal bot system and an enterprise (e.g., the enterprise 106) allows the personal bot system to negotiate transactions with the enterprise on behalf of the end user with reduced or no involvement from the end user. In some embodiments, the personal bot system may interact with an enterprise (e.g., the enterprise 106) through various interfaces provided by the enterprise, such as APIs published by the enterprise (e.g., provided by web servers 222 of the contact center system 200 of FIG. 2 ) and chat bots associated with the enterprise.

As shown in FIG. 1 , the end user device 102 may also include or be configured to execute/manage a software wallet 138 (e.g., smart wallet) and/or application interface to such a software wallet. Accordingly, it should be appreciated that the software wallet 138 itself and/or the application capable of interfacing with the software wallet 138 may be embodied as any type of application suitable for performing the functions described herein. For simplicity and brevity of the description, it should be further appreciated that the software wallet 138 may be described herein as being an application itself. In some embodiments, the software wallet 138 may be embodied as, leverage, or rely upon a mobile application (e.g., a smartphone application), a cloud-based application, a web application, a thin-client application, and/or another type of application. For example, in some embodiments, the software wallet 138 may serve as a client-side interface (e.g., via a web browser) for a web-based application or service. Additionally, although only one software wallet 138 is shown as being included in and/or otherwise accessed by the end user device 102, it should be appreciated that end user device 102 may include and/or be configured to access multiple software wallets in some embodiments. In some embodiments, the software wallet 138 may be embodied as a component of, included in, and/or otherwise be associated with the application 120. The application 120 may provide a secure endpoint for interactions with the software wallet 138.

It should be appreciated that the software wallet 138 allows users to view their personal data (e.g., for each enterprise 106, 108, 110, 122, 124, 126 for which the user has data), create profiles based on or associated with the user data, monitor how the data is being used by the enterprises 106, 108, 110, 122, 124, 126 and/or other devices, adjust real-time permissions and/or other permissions on the data usage over the enterprises 106, 108, 110, 122, 124, 126 and/or other devices, and/or edit (e.g., add, change, delete, etc.) the various user data.

The personal bot system of the application 120 (e.g., coupled with web 3.0) may be used in conjunction with the software wallet 138 to allow users to monitor and control their data (e.g., personal data and/or enterprise-specific data). In some embodiments, the personal bot may act as an endpoint for receiving real-time permissions and authorizations from the users for enterprises 106, 108, 110, 122, 124, 126 to use their data. Further, in some embodiments, the enterprises 106, 108, 110, 122, 124, 126 may use the personal bot of the application 120 as an endpoint to reach out to the user for permission to access data and/or notifications.

In some embodiments, the user data accessible to the software wallet 138 may be stored in the secure data store 136. The secure data store 136 may be embodied as any suitable type of data storage device, component, system, and/or collection thereof capable of securely storing user data associated with the software wallet 138. For example, the secure data storage 136 may include one or more databases, data structures, and/or data storage devices capable of securely storing the software wallet data. In the illustrative embodiment, the secure data store 136 is depicted as data storage that is located remote from but accessible to the end user device 102 via the software wallet; however, in other embodiments, the end user device 102 itself may securely store the user data stored in or associated with the software wallet.

As described herein, various transactions associated with the software wallet 138 and/or otherwise, may involve the transactions being ledgered (e.g., added) to blocks within the blockchain network/infrastructure. Accordingly, the software wallet 138 allows the users to set data permission levels for the various enterprises 106, 108, 110, 122, 124, 126 and/or other devices that could potentially access the user's data. For example, in some embodiments, the permission levels of the software wallet 138 may include access or permission levels granted by a user for each relevant enterprise 106, 108, 110, 122, 124, 126 for each unit of data. In some embodiments, the permission levels may be authorized individually at the transaction level, may authorize default sharing of data (e.g., each transaction being authorized), may authorize all transactions from an enterprise 106, 108, 110, 122, 124, 126 by default for a particular period of time, and/or otherwise. Further, in some embodiments, the permission levels may identify when to revoke transaction data. Depending on the particular embodiment, it should be appreciated that the permissions may also include profile-based restrictions on use, enterprise-based restrictions on use, and/or transaction-based restrictions on use.

By way of example, Maya can set permission levels on her travel meal preferences that an enterprise (e.g., one of the enterprises 106, 108, 110, 122, 124, 126) can always view, view only after authorization, and/or never view. Based on the level of authorization that Maya has set on the travel meal preferences through her software wallet 138, the airline company may or may not receive the data. In some embodiments, Maya can check to see which enterprises have used/accessed her travel meal preferences, and her software wallet 138 will have a complete history of events that have occurred in the background, thereby providing Maya with a new level of transparency related to use of her data.

When an enterprise (e.g., the enterprise 106) needs the user's preferences (e.g., airline preferences) that are saved by a different enterprise (e.g., the enterprise 108), the enterprises may use personalized mobile applications (e.g., the application 120) to communicate with the user for access permissions to the user data, which simplifies interactions between enterprises to obtain/transfer data across enterprises. Additionally, as described herein, a similar infrastructure allows enterprises outside of the enterprise system 112 (e.g., off-chain enterprises) to interact through the blockchain, the oracle system 134, and/or APIs to obtain similar benefits. The incorporate of the software wallet 138 into the system 100 further permits another layer of data accessibility and transparency throughout the enterprise ecosystem.

The network 104 may be embodied as any one or more types of communication networks that are capable of facilitating communication between the various devices communicatively connected via the network 104. As such, the network 104 may include one or more networks, routers, switches, access points, hubs, computers, and/or other intervening network devices. For example, the network 104 may be embodied as or otherwise include one or more cellular networks, telephone networks, local or wide area networks, publicly available global networks (e.g., the Internet), ad hoc networks, short-range communication links, or a combination thereof. In some embodiments, the network 104 may include a circuit-switched voice or data network, a packet-switched voice or data network, and/or any other network able to carry voice and/or data. In particular, in some embodiments, the network 104 may include Internet Protocol (IP)-based and/or asynchronous transfer mode (ATM)-based networks. In some embodiments, the network 104 may handle voice traffic (e.g., via a Voice over IP (VOIP) network), web traffic (e.g., such as hypertext transfer protocol (HTTP) traffic and hypertext markup language (HTML) traffic), and/or other network traffic depending on the particular embodiment and/or devices of the system 100 in communication with one another. In various embodiments, the network 104 may include analog or digital wired and wireless networks (e.g., IEEE 802.11 networks, Public Switched Telephone Network (PSTN), Integrated Services Digital Network (ISDN), and Digital Subscriber Line (xDSL)), Third Generation (3G) mobile telecommunications networks, Fourth Generation (4G) mobile telecommunications networks, Fifth Generation (5G) mobile telecommunications networks, a wired Ethernet network, a private network (e.g., such as an intranet), radio, television, cable, satellite, and/or any other delivery or tunneling mechanism for carrying data, or any appropriate combination of such networks. The network 104 may enable connections between the various devices/systems 102, 106, 108 of the system 100. It should be appreciated that the various devices/systems 102, 106, 108 may communicate with one another via different networks 104 depending on the source and/or destination devices 102, 106, 108.

The enterprises 106, 108, 110, 122, 124, 126 may be embodied as any one or more types of devices/systems that are capable of interacting with an end user and otherwise performing the functions described herein. It should be appreciated that the enterprises 106, 108, 110, 122, 124, 126 may be associated with organizations (e.g., companies) in some embodiments. The enterprises 106, 108, 110 may possess certain data and provide such data to an end user in response to a request from the end user. For example, an end user may desire to purchase airline tickets from an airline enterprise. End users may purchase plane tickets by calling an airline enterprise (e.g., the enterprise 106) to speak with a sales agent (e.g., a sales agent associated with the contact center system 114) and providing payment information over the telephone. End users may alternatively use the airline's website to search for flights and enter payment through a form in the web browser. In the illustrative embodiment, end users may interact with the contact center system 114 of enterprise 106 over the network 104 via the end user device 102.

The enterprise system 112 may be embodied as any one or more types of devices/systems that are capable of functioning as a unit and interacting via a technological platform to exchange data and other resources and otherwise performing the functions described herein. For example, in the illustrative embodiment, the enterprise system 112 may include the enterprises 106, 108, 110 and such enterprises may share data and other resources with each other. The enterprise system 112 may include other enterprises that are not shown in FIG. 1 or fewer enterprises than those shown in FIG. 1 depending on the particular embodiment. The enterprise 106 may exchange data over the network 104 with one or more of the enterprises 108, 110 in the enterprise system 112. It should be appreciated that the enterprise system 112 may be a private system, for example, in which any enterprises not included in the enterprise system 112 cannot access the technological platform without either being added to the enterprise system 112 or being given permission to access the technological platform via the enterprise system 112.

It should be further appreciated that the enterprises included in the enterprise system 112 may or may not be associated with related legal entities (e.g., subsidiary companies, daughter companies, other companies that are owned or controlled by another company such as a parent company, etc.) depending on the particular embodiment. Further, although the enterprises of the enterprise system 112 are described herein as being associated with one another (e.g., as nodes in a private system associated with a permissioned blockchain infrastructure), in other embodiments, it should be appreciated that the enterprises may be associated with one another only insofar as they are configured to communicate with the end user device 102 and/or other devices of the system 100 and otherwise perform the functions described herein.

The oracle system 134 may be embodied as any one or more types of devices/systems that are capable of connecting the blockchain network described in the present disclosure to data sources and/or resources that are “external” to the blockchain network of the present disclosure and/or otherwise performing the functions described herein. For example, in some embodiments, the oracle system 134 may connect the blockchain network (e.g., one or more of the enterprises 106, 108, 110 of the enterprise system 112) with an off-chain enterprise (e.g., one or more of the enterprises 122, 124, 126). The oracle system 134 may function as a bridge between the blockchain network and the off-chain enterprises. For example, the oracle system 134 may permit the blockchain network to receive data and/or requests from off-chain enterprises. Similarly, the oracle system 134 may permit the off-chain enterprises to receive data and/or requests from the blockchain network. APIs may be used to transmit data and/or requests to the blockchain network.

The oracle system 134 may be embodied as or include one or more automated oracles and/or one or more human oracles. In some embodiments, the one or more automated oracles may receive a data request from the blockchain network (e.g., via the enterprise 106). In response to receiving the data request, the one or more automated oracles may automatically access a data source of an off-chain enterprise (e.g., the enterprise 122). In some embodiments, the data source may be one or more off-chain enterprises (e.g., the enterprise 122), one or more off-chain databases, one or more off-chain data structures, one or more off-chain web-based APIs, and/or one or more off-chain data storage devices/systems capable of storing data or otherwise facilitating the storage of such data. The one or more automated oracles may then retrieve the requested data (e.g., from the enterprise 122) and may automatically transmit the requested data to the blockchain network (e.g., to the enterprise 106). In some embodiments, the one or more automated oracles may be communicating with one or more smart contracts of the blockchain network to perform the functions disclosed herein. The data source from which the data may be retrieved may be predetermined by one or more smart contracts of the blockchain network. Additionally or alternatively, in some embodiments, the one or more automated oracles may receive a data request from an off-chain enterprise (e.g., the enterprise 122). In response to receiving the data request, the one or more automated oracles may automatically access the requested data from the blockchain network (e.g., via the enterprise 106). The one or more automated oracles may then automatically transmit the requested data to the off-chain enterprise (e.g., to the enterprise 122).

It should be appreciated that the one or more automated oracles of the oracle system 134 may include one or more inbound automated oracles and/or one or more outbound automated oracles. For example, in some embodiments, the one or more outbound automated oracles may receive the request for data from the blockchain network (e.g., via the enterprise 106) and transmit the request for data to the data source of an off-chain enterprise (e.g., via the enterprise 122). The one or more inbound automated oracles may receive the requested data from the off-chain enterprise (e.g., via the enterprise 122) and transmit the requested data to the blockchain network (e.g., via the enterprise 106).

The one or more human oracles may include or be otherwise associated with human involvement. In some embodiments, a human oracle may be able to not only transmit deterministic data but may also respond to arbitrary requests that may not be otherwise by possible by an automated oracle. For example, human oracles may be able to provide answers to unstructured data requests. Sample dialogue may include: “Does John update his address with you”? or “Do you have John's Meal Preferences”? or “Is John's previous employment salary X?” In some embodiments, the one or more human oracles may receive the request for data from the blockchain network (e.g., via the enterprise 106) and transmit the request for data to the data source of an off-chain enterprise (e.g., via the enterprise 122). The one or more human oracles may receive the requested data from the off-chain enterprise (e.g., via the enterprise 122) and transmit the requested data to the blockchain network (e.g., via the enterprise 106).

The oracle system 134 may include or be associated with one or more single sourced oracles and/or one or more multiple sourced oracles. In some embodiments, a single sourced oracle may be an oracle that queries a single data source for data. In some embodiments, a multiple sourced oracle may be an oracle that queries more than one data source for data. For example, if the enterprises 122, 124, 126 deposit data collectively in a common data source, then the single sourced oracle may query the common data source and retrieve the data. Alternatively, if the enterprises 122, 124, 126 deposit data separately in separate data sources, then the multiple sourced oracle may query the separate data sources and retrieve and aggregate the data together. In some embodiments, retrieval of the data may generate one or more events for a smart contract to begin executing.

In some embodiments, when receiving data from an oracle system (e.g., the oracle system 134), a smart contract may depend on the truth of the requested data provided by an off-chain enterprise (e.g., via the enterprise 122), which may result in having to trust a third party and, thereby, may potentially jeopardize the benefits of a decentralized blockchain. A potential problem may occur at the data source and/or the oracle system when the trust of such data source and/or oracle system becomes compromised, which may decrease the security in the blockchain network. For example, a trustworthy oracle system may be useless if the data retrieved from a data source is incorrect. Similarly, correct data retrieved from a trustworthy data source may be useless if an oracle system does not correctly transmit the requested data to the blockchain network (e.g., to the enterprise 106).

There are various approaches that may be used to reduce the risk of untrustworthiness of an oracle system. In some embodiments, a technical framework may be used to reduce the risk of an oracle system from tampering with data. For example, a TLS notary (or a comparable digital notary functionality) may be used to sign the data during its retrieval from a data source. Additionally, a secure hardware bridge may be created between a data source and a smart contract by using software guard extensions. Further, in some embodiments, multiple oracle systems may be used (i.e., instead of one oracle system as shown in the illustrative embodiment of FIG. 1 ) to aggregate data in order to reduce the susceptibility of misconduct by one oracle system. In some embodiments, decentralized oracles may also be used to reduce the risk of untrustworthiness of an oracle system. By way of example, one or more of ChainLink, WitNet, Oraclize, Town Crier, and/or other technologies and implementations may be used in accordance with some of the embodiments of the present disclosure. In some embodiments, a technical framework may be used to reduce the risk of tampering of data occurring at a centralized data source. For example, in some embodiments, multiple data sources may be used in a manner in which the multiple data sources create a consensus among the data sources and aggregate the data into a single response to the request for data from an oracle system.

It should be appreciated that, in some of the embodiments described herein, the system 100 (e.g., one or more of the devices/systems thereof) may leverage one or more machine learning techniques to perform the functions described herein (e.g., for improved functionality of the user's personal bot and/or for other suitable purposes). In doing so, in some embodiments, the system 100 (e.g., one or more of the devices/system thereof) may utilize one or more neural network algorithms, regression algorithms, instance-based algorithms, regularization algorithms, decision tree algorithms, Bayesian algorithms, clustering algorithms, association rule learning algorithms, deep learning algorithms, dimensionality reduction algorithms, and/or other suitable machine learning algorithms, techniques, and/or mechanisms.

Referring now to FIG. 2 , the contact center system 200 may be embodied as any system capable of providing contact center services (e.g., call center services, chat center services, SMS center services, etc.) to an end user and otherwise performing the functions described herein. The contact center system 200 may be illustrative of any of the contact center systems 114, 116, 118 shown in FIG. 1 . Such contact center systems 114, 116, 118 may be collectively referred to herein as the contact center system 200. Depending on the particular embodiment, it should be appreciated that the contact center system 200 may be located on the premises of the enterprise utilizing the contact center system 200 and/or located remotely relative to the enterprise (e.g., in a cloud-based computing environment). In some embodiments, a portion of the contact center system 200 may be located on the enterprise's premises/campus while other portions of the contact center system 200 may be located remotely relative to the enterprise's premises/campus. As such, it should be appreciated that the contact center system 200 may be deployed in equipment dedicated to the enterprise or third-party service provider thereof and/or deployed in a remote computing environment such as, for example, a private or public cloud environment with infrastructure for supporting multiple contact centers (e.g., the contact center systems 114, 116, 118) for multiple enterprises (e.g., the enterprises 106, 108, 110). In some embodiments, the contact center system 200 includes resources (e.g., personnel, computers, and telecommunication equipment) to enable delivery of services via telephone and/or other communication mechanisms. Such services may include, for example, technical support, help desk support, emergency response, and/or other contact center services depending on the particular type of contact center. The various components of the contact center system 200 may also be distributed across various geographic locations and computing environments and not necessarily contained in a single location, computing environment, or even computing device.

The illustrative contact center system 200 includes the network 104, a switch/media gateway 202, a call controller 204, an IMR server 206, a routing server 208, a stat server 210, a data storage 212, agent devices 214, 216, 218, a multimedia/social media server 220, web servers 222, an interaction (iXn) server 224, a universal contact server 226, a reporting server 228, and a cloud computing service 230.

An end user (e.g., a customer and/or a potential customer) desiring to receive services from the contact center system 200 may initiate inbound communications (e.g., telephony calls, emails, chats, video chats, social media posts, etc.) to the contact center system 200 via the end user device 102. The switch/media gateway 202 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. The switch/media gateway 202 may be coupled to the network 104 for receiving and transmitting telephony calls between the end user device 102 and the contact center system 200. The switch/media gateway 202 may include a telephony switch and/or communication switch configured to function as a central switch for agent level routing within the contact center system 200. The switch/media gateway 202 may be a hardware switching system or a soft switch implemented via software. For example, the switch/media gateway 202 may include an automatic call distributor, a private branch exchange (PBX), an IP-based software switch, and/or any other switch with specialized hardware and software configured to receive Internet-sourced interactions and/or telephone network-sourced interactions from the end user device 102, and route those interactions to, for example, the agent devices 214, 216, 218. In this example, the switch/media gateway 202 may establish a voice path/connection (not shown) between the end user device 102 and the agent devices 214, 216, 218, by establishing, for example, a connection between the end user device 102 and the agent devices 214, 216, 218.

In an embodiment, the switch/media gateway 202 may be coupled to a call controller 204. The call controller 204 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. For example, the call controller 204 may serve as an adapter or interface between the switch/media gateway 202 and the remainder of the routing, monitoring, and other communication-handling components of the contact center system 200. The call controller 204 may be configured to process PSTN calls and/or VoIP calls. For example, the call controller 204 may be configured with computer-telephony integration (CTI) software for interfacing with the switch/media gateway 202 and contact center system 200 equipment. In one embodiment, the call controller 204 may include a session initiation protocol (SIP) server for processing SIP calls.

In some embodiments, the call controller 204 may, for example, extract data about the end user interaction such as the end user's telephone number (often known as the automatic number identification (ANI) number), or the end user's interne protocol (IP) address, or email address, and communicate with other contact center system 200 components in processing the interaction.

The IMR server 206 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. For example, in some embodiments, the IMR server 206 may also be referred to herein as a self-help system or virtual assistant. The IMR server 206 may be similar to an interactive voice response (IVR) server, except that the IMR server 206 is not restricted to voice and may encompass a variety of media channels, including, for example, voice and text chat (e.g., implementing a chat bot). Considering voice as an example, however, the IMR server 206 may be configured with an IMR script for querying end users on their needs. For example, a contact center system 200 for a bank may tell end users, via the IMR script, to “press 1” if they wish to get an account balance. If this is the case, through continued interaction with the IMR server 206, end users may complete service without needing to speak with an agent. The IMR server 206 may also ask an open-ended question such as, for example, “How can I help you?” and the end user may speak or otherwise enter a reason for contacting the contact center. The end user's response may then be used by a routing server 208 to route the call or communication to an appropriate contact center resource.

If the communication is to be routed to an agent, the call controller 204 interacts with the routing server 208 (also referred to herein as an orchestration server) to find an appropriate agent for processing the interaction. The call controller 204 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. The selection of an appropriate agent for routing an inbound interaction may be based, for example, on a routing strategy employed by the routing server 208, and further based on information about agent availability, skills, and other routing parameters provided, for example, by a statistics server 210 (also referred to herein as a stat server). The stat server 210 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein.

In some embodiments, the routing server 208 may query the data storage 212. The data storage 212 may be embodied as one or more databases, data structures, and/or data storage devices capable of storing data in the contact center system 200 or otherwise facilitating the storage of such data for the contact center system 200. For example, in some embodiments, the data storage 212 may include one or more cloud storage buckets. In some embodiments the data storage 212 may store information relating to agent data (e.g., agent profiles, and/or schedules), end user data (e.g. end user profiles, contact information, service level agreement requirements, nature of previous end user contacts and actions taken by the contact center system 200 to resolve any end user issues), and/or interaction data (e.g., details of each interaction with an end user, including reason for the interaction, disposition data, time on hold, and/or handle time). In some embodiments, some of the data (e.g., end user profile data) may be maintained in an end user relations management (CRM) database hosted in the data storage 212. The data storage 212 may also be embodied as any device or component, or collection of devices or components, capable of short-term or long-term storage of data. Although the data storage 212 is described herein as data storages and databases, it should be appreciated that the data storage 212 may include both a database (or other type of organized collection of data and structures) and data storage for the actual storage of the underlying data. The data storage 212 may store various data useful for performing the functions described herein.

After an appropriate agent is identified as being available to handle a communication, a connection may be made between the end user device 102 and agent devices 214, 216, 218 of the identified agent. The agent devices 214, 216, 218 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. Collected information about the end user and/or the end user's historical information may also be provided to the agent devices 214, 216, 218 for aiding the agent in better servicing the communication. The agent devices 214, 216, 218 may include a telephone adapted for regular telephone calls, VoIP calls, etc. The agent devices 214, 216, 218 may also include a computer for communicating with one or more servers of the contact center system 200 and performing data processing associated with contact center operations, and for interfacing with end users via voice and other multimedia communication mechanisms.

The multimedia/social media server 220 (also referred to herein as a media server) may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. For example, in some embodiments, the multimedia/social media server 220 may engage in media interactions other than voice interactions with the end user device 102 and/or web servers 222. The media interactions may be related, for example, to email, vmail (voice mail through email), chat, video, text-messaging, web, social media, and/or co-browsing. In this regard, the multimedia/social media server 220 may take the form of any IP router conventional in the art with specialized hardware and software for receiving, processing, and forwarding multi-media events.

The web servers 222 may include, for example, social interaction site hosts for a variety of known social interaction sites to which an end user may subscribe, such as, for example, Facebook, Twitter, Instagram, etc. The web servers 222 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. Although in the embodiment of FIG. 2 the web servers 222 are depicted as being part of the contact center system 200, the web servers 222 may also be provided by third parties and/or maintained outside of the contact center system 200 premises. The web servers 222 may also provide web pages for the enterprises 106, 108, 110 that are being supported by the contact center systems 114, 116, 118. End users may browse the web pages and get information about the products and services of the enterprises 106, 108, 110. The web pages may also provide a mechanism for contacting the contact center system 200, via, for example, web chat (e.g., with a live agent and/or with a chat bot), voice call, email, and/or WebRTC.

The web servers 222 may also provide public facing application programming interfaces (APIs) for interacting with the contact center systems 114, 116, 118 and/or the enterprises 106, 108, 110. For example, the web servers may implement APIs in accordance with the Representational State Transfer (REST) architectural style (a “RESTful” web service), where request and response payloads may be transmitted in data formats such as Extensible Markup Language (XML) or JavaScript Object Notation (JSON). As another example, the web servers may implement APIs in accordance with markup languages and/or protocols such as the Web Services Description Language (WSDL) and Simple Object Access Protocol (SOAP), or using proprietary protocols.

In addition to real-time interactions, deferrable (also referred to as back-office or offline) interactions/activities may also be routed to the agent devices 214, 216, 218. Such deferrable activities may include, for example, responding to emails, responding to letters, attending training seminars, or any other activity that does not entail real time communication with an end user. In this regard, an interaction (iXn) server 224 interacts with the routing server 208 for selecting an appropriate agent device 214, 216, 218 to handle the activity. The iXn server 224 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. Once assigned to an agent device 214, 216, 218, an activity may be pushed to the agent, or may appear in the agent's workbin of an agent device 214, 216, 218 as a task to be completed by the agent. The agent's workbin may be implemented via any data structure conventional in the art, such as, for example, a linked list and/or array. The workbin may be maintained, for example, in buffer memory of the agent devices 214, 216, 218.

The universal contact server 226 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. The universal contact server 226 may be configured to retrieve information stored in the CRM database and direct information to be stored in the CRM database. The universal contact server 226 may also be configured to facilitate maintaining a history of end users' preferences and interaction history, and to capture and store data regarding comments from agents and/or end user communication history.

The reporting server 228 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. The reporting server 228 may be configured to generate reports from data aggregated by the statistics server 210. Such reports may include near real-time reports or historical reports concerning the state of resources, such as, for example, average waiting time, abandonment rate, and/or agent occupancy. The reports may be generated automatically or in response to specific requests from a requestor (e.g., agent/administrator, contact center application, etc.).

The end user device 102 and the various components of the contact center system 200 may communicate with a cloud computing service 230 (e.g., cloud computing services operated by a third party) over the network 104. The cloud computing service 230 may be embodied as any one or more types of devices/systems that are capable of performing the functions described herein. Examples of cloud computing services 230 include infrastructure as a service (IaaS) and proprietary platforms providing various particular computing services such as data storage, data feeds, and data synchronization.

In the illustrative embodiment, the contact center system 200 may be embodied as a cloud-based system executing in a cloud computing environment; however, it should be appreciated that, in other embodiments, the contact center system 200 or a portion thereof (e.g., one or more of the network 104, the switch/media gateway 202, the call controller 204, the IMR server 206, the routing server 208, the stat server 210, the data storage 212, the agent devices 214, 216, 218, the multimedia/social media server 220, the web servers 222, the interaction (iXn) server 224, the universal contact server 226, the reporting server 228, and the cloud computing service 230, and/or one or more portions thereof) may be embodied as one or more systems executing outside of a cloud computing environment.

In cloud-based embodiments, one or more of the network 104, the switch/media gateway 202, the call controller 204, the IMR server 206, the routing server 208, the stat server 210, the data storage 212, the agent devices 214, 216, 218, the multimedia/social media server 220, the web servers 222, the interaction (iXn) server 224, the universal contact server 226, the reporting server 228, and/or the cloud computing service 230 (and/or one or more portions thereof) may be embodied as a server-ambiguous computing solution, for example, that executes a plurality of instructions on-demand, contains logic to execute instructions only when prompted by a particular activity/trigger, and does not consume computing resources (or consumes nominal resources) when not in use. That is, the contact center system 200, the network 104, the switch/media gateway 202, the call controller 204, the IMR server 206, the routing server 208, the stat server 210, the data storage 212, the agent devices 214, 216, 218, the multimedia/social media server 220, the web servers 222, the interaction (iXn) server 224, the universal contact server 226, the reporting server 228, and/or the cloud computing service 230 (and/or one or more portions thereof) may be embodied as a virtual computing environment residing “on” a computing system (e.g., a distributed network of devices) in which various 3^(rd) party virtual functions may be executed corresponding with the functions of the contact center system 200, the network 104, the switch/media gateway 202, the call controller 204, the IMR server 206, the routing server 208, the stat server 210, the data storage 212, the agent devices 214, 216, 218, the multimedia/social media server 220, the web servers 222, the interaction (iXn) server 224, the universal contact server 226, the reporting server 228, and/or the cloud computing service 230 (and/or one or more portions thereof) described herein. For example, when an event occurs (e.g., data is transferred to the contact center system 200 for handling), the virtual computing environment may be communicated with (e.g., via a request to an API of the virtual computing environment), whereby the API may route the request to the correct virtual function (e.g., a particular server-ambiguous computing resource) based on a set of rules. As such, when a request for the transmission of data is made (e.g., via an appropriate user interface to the contact center system 200), the appropriate virtual function(s) may be executed to perform the actions before eliminating the instance of the virtual function(s).

It should be appreciated that each of the end user device 102, network 104, enterprises 106, 108, 110, enterprise system 112, and contact center systems 114, 116, 118 may be embodied as (or include) one or more computing devices similar to the computing device 300 described below in reference to FIG. 3 . For example, in the illustrative embodiment, each of end user device 102, network 104, enterprises 106, 108, 110, enterprise system 112, and contact center systems 114, 116, 118 may include a processing device 302 and a memory 306 having stored thereon operating logic 308 (e.g., a plurality of instructions) for execution by the processing device 302 for operation of the corresponding device.

Referring now to FIG. 3 , a simplified block diagram of at least one embodiment of a computing device 300 is shown. The illustrative computing device 300 depicts at least one embodiment of an end user device, a network, enterprises, an enterprise system and/or a contact center system that may be utilized in connection with the end user device 102, the network 104, the enterprises 106, 108, 110, the enterprise system 112, and/or the contact center systems 114, 116, 118 illustrated in FIG. 1 . Further, in some embodiments, one or more of the switch/media gateway 202, the call controller 204, the IMR server 206, the routing server 208, the stat server 210, the data storage 212, the agent devices 214, 216, 218, the multimedia/social media server 220, the web servers 222, the interaction (iXn) server 224, the universal contact server 226, the reporting server 228, and the cloud computing service 230 of FIG. 2 (and/or a portion thereof) may be embodied as or be executed by one or more computing devices similar to the computing device 300. Depending on the particular embodiment, the computing device 300 may be embodied as a server, desktop computer, laptop computer, tablet computer, notebook, netbook, Ultrabook™, cellular phone, mobile computing device, smartphone, wearable computing device, personal digital assistant, Internet of Things (IoT) device, processing system, wireless access point, router, gateway, and/or any other computing, processing, and/or communication device capable of performing the functions described herein.

The computing device 300 includes a processing device 302 that executes algorithms and/or processes data in accordance with operating logic 308, an input/output device 304 that enables communication between the computing device 300 and one or more external devices 310, and memory 306 which stores, for example, data received from the external device 310 via the input/output device 304.

The input/output device 304 allows the computing device 300 to communicate with the external device 310. For example, the input/output device 304 may include a transceiver, a network adapter, a network card, an interface, one or more communication ports (e.g., a USB port, serial port, parallel port, an analog port, a digital port, VGA, DVI, HDMI, FireWire, CAT 5, or any other type of communication port or interface), and/or other communication circuitry. Communication circuitry of the computing device 300 may be configured to use any one or more communication technologies (e.g., wireless or wired communications) and associated protocols (e.g., Ethernet, Bluetooth®, Wi-Fi®, WiMAX, etc.) to effect such communication depending on the particular computing device 300. The input/output device 304 may include hardware, software, and/or firmware suitable for performing the techniques described herein.

The external device 310 may be any type of device that allows data to be inputted or outputted from the computing device 300. For example, in various embodiments, the external device 310 may be embodied as the end user device 102, the network 104, the enterprises 106, 108, 110, the enterprise system 112, the contact center systems 114, 116, 118, switch/media gateway 202, the call controller 204, the IMR server 206, the routing server 208, the stat server 210, the data storage 212, the agent devices 214, 216, 218, the multimedia/social media server 220, the web servers 222, the interaction (iXn) server 224, the universal contact server 226, the reporting server 228, and/or the cloud computing service 230. Further, in some embodiments, the external device 310 may be embodied as another computing device, switch, diagnostic tool, controller, printer, display, alarm, peripheral device (e.g., keyboard, mouse, touch screen display, etc.), and/or any other computing, processing, and/or communication device capable of performing the functions described herein. Furthermore, in some embodiments, it should be appreciated that the external device 310 may be integrated into the computing device 300.

The processing device 302 may be embodied as any type of processor(s) capable of performing the functions described herein. In particular, the processing device 302 may be embodied as one or more single or multi-core processors, microcontrollers, or other processor or processing/controlling circuits. For example, in some embodiments, the processing device 302 may include or be embodied as an arithmetic logic unit (ALU), central processing unit (CPU), digital signal processor (DSP), and/or another suitable processor(s). The processing device 302 may be a programmable type, a dedicated hardwired state machine, or a combination thereof Processing devices 302 with multiple processing units may utilize distributed, pipelined, and/or parallel processing in various embodiments. Further, the processing device 302 may be dedicated to performance of just the operations described herein, or may be utilized in one or more additional applications. In the illustrative embodiment, the processing device 302 is programmable and executes algorithms and/or processes data in accordance with operating logic 308 as defined by programming instructions (such as software or firmware) stored in memory 306. Additionally or alternatively, the operating logic 308 for processing device 302 may be at least partially defined by hardwired logic or other hardware. Further, the processing device 302 may include one or more components of any type suitable to process the signals received from input/output device 304 or from other components or devices and to provide desired output signals. Such components may include digital circuitry, analog circuitry, or a combination thereof.

The memory 306 may be of one or more types of non-transitory computer-readable media, such as a solid-state memory, electromagnetic memory, optical memory, or a combination thereof. Furthermore, the memory 306 may be volatile and/or nonvolatile and, in some embodiments, some or all of the memory 306 may be of a portable type, such as a disk, tape, memory stick, cartridge, and/or other suitable portable memory. In operation, the memory 306 may store various data and software used during operation of the computing device 300 such as operating systems, applications, programs, libraries, and drivers. It should be appreciated that the memory 306 may store data that is manipulated by the operating logic 308 of processing device 302, such as, for example, data representative of signals received from and/or sent to the input/output device 304 in addition to or in lieu of storing programming instructions defining operating logic 308. As shown in FIG. 3 , the memory 306 may be included with the processing device 302 and/or coupled to the processing device 302 depending on the particular embodiment. For example, in some embodiments, the processing device 302, the memory 306, and/or other components of the computing device 300 may form a portion of a system-on-a-chip (SoC) and be incorporated on a single integrated circuit chip.

In some embodiments, various components of the computing device 300 (e.g., the processing device 302 and the memory 306) may be communicatively coupled via an input/output subsystem, which may be embodied as circuitry and/or components to facilitate input/output operations with the processing device 302, the memory 306, and other components of the computing device 300. For example, the input/output subsystem may be embodied as, or otherwise include, memory controller hubs, input/output control hubs, firmware devices, communication links (i.e., point-to-point links, bus links, wires, cables, light guides, printed circuit board traces, etc.) and/or other components and subsystems to facilitate the input/output operations.

The computing device 300 may include other or additional components, such as those commonly found in a typical computing device (e.g., various input/output devices and/or other components), in other embodiments. It should be further appreciated that one or more of the components of the computing device 300 described herein may be distributed across multiple computing devices. In other words, the techniques described herein may be employed by a computing system that includes one or more computing devices. Additionally, although only a single processing device 302, I/O device 304, and memory 306 are illustratively shown in FIG. 3 , it should be appreciated that a particular computing device 300 may include multiple processing devices 302, I/O devices 304, and/or memories 306 in other embodiments. Further, in some embodiments, more than one external device 310 may be in communication with the computing device 300.

Referring now to FIG. 4 , in use, the system 100 may execute a method 400 for conducting a data transaction between enterprises using a permissioned blockchain infrastructure. It should be appreciated that the particular blocks of the method 400 are illustrated by way of example, and such blocks may be combined or divided, added or removed, and/or reordered in whole or in part depending on the particular embodiment, unless stated to the contrary. Prior to execution of the method 400, it should be appreciated that an end user may interact with the end user device 102 via a user interface of the application 120 (e.g., the personal bot system and/or a graphical user interface) in order to communicate a request for data to an enterprise (e.g., the system 100, via the enterprise 106, may receive a request for data). For example, an end user may communicate an issue with her cable interne service to an enterprise (e.g., the enterprise 106) via the application 120 (e.g., the personal bot system).

The illustrative method 400 may begin with block 402 in which the system 100 (e.g., via the enterprise 106 or, more specifically, the contact center system 114 of the enterprise 106) may receive the request for data from the end user device 102 (e.g., via the application 120 or, more particularly, the personal bot system). In some embodiments, the request for data may be generated by the end user device 102 utilizing the application 120 (e.g., the personal bot system). In some embodiments, the request for data may be generated by the end user device 102 utilizing at least one of an email, a chat, a website search, a survey feedback, a voice, or a social media conversation. In some embodiments, the end user device 102 may be an IoT device. For example, the IoT readings of an end user's air conditioner may generate an interaction with an enterprise that the end user's air conditioner compressor may have problems and may need service.

In block 404, the enterprise 106 (e.g., via the contact center system 114) may analyze the request for data and may determine that the enterprise 106 does not possess the requested data. Referring back to the cable internet service example, the enterprise 106 may determine that it does not have a solution to address the issue with the end user's cable internet service. In block 406, the enterprise 106 (e.g., via the contact center system 114) may utilize a technological platform to determine whether one or more of the enterprises 106, 108, 110 in the enterprise system 112 possesses the requested data or one or more of the enterprises 122, 124, 126 possesses the requested data. In other words, the technological platform may be leveraged (e.g., by the enterprise 106) to determine whether an on-chain enterprise (e.g., one or more of the enterprises 108, 110) or an off-chain enterprise (e.g., one or more of the enterprises 122, 124, 126) possesses the requested or desired data. If the technical platform determines that an on-chain enterprise (e.g., one or more of the enterprises 108, 110 in the enterprise system 112) possesses the requested data, the method 400 may advance to block 408 in which the technological platform may communicate to the enterprise 106 information regarding the enterprise possessing the requested data (e.g., the enterprise 108). For example, the technological platform may determine that enterprise 108 possesses the solution to address the issue with the end user's cable internet service. The enterprise 106 (e.g., via the contact center system 114) may then transmit the request for data to the enterprise 108.

In block 410, the system 100 may permit a data transaction between the enterprise 106 (e.g., via the contact center system 114) and the enterprise 108 (e.g., via the contact center system 116) utilizing a permissioned blockchain infrastructure. For example, the enterprise 108 may share with the enterprise 106 the solution to address the issue with the end user's cable internet service. In some embodiments, the system 100 may execute the method 500 of FIG. 5 (or a portion thereof) as described in detail below in association with the method 400 of FIG. 4 .

It should be appreciated that a blockchain may refer to a suite of distributed ledger technologies that can be programmed to record and track the data transactions of the present disclosure. The blockchain is a combination of three technologies, including cryptography, a peer-to-peer network, and a governance structure. The blockchain may store data in batches, called blocks, which are linked together in a chronological manner to form a continuous “chain” of blocks. If a change occurs to the data recorded in a particular block, the change may be stored in a new block showing the change at a particular date and time (e.g., “X changed to Y on Aug. 23, 2020 at 10:45 AM EDT”). The blockchain may be decentralized and distributed across a network of nodes. The decentralizing of data may reduce the ability for data tampering. Each enterprise within the blockchain network (e.g., within the system 100) may maintain, approve, and update new blocks.

The blockchain governance elements may be categorized into four elements, including, the consensus algorithm, incentives, information, and governing structure. For example, the blockchain network may leverage one or more consensus algorithms to execute the data transaction verification within the blockchain network. Consensus may be a method of reaching agreement among the different nodes on the blockchain network. Different blockchain systems may implement different consensus algorithms which can benefit the entities that validate new data transactions and record the transactions on the blockchain (i.e., the miners) directly or indirectly. For example, in some embodiments, the blockchain network may utilize a proof of work algorithm, a delayed proof of work algorithm, a proof of stake algorithm, a delegated proof of stake algorithm, a leased proof of stake algorithm, a proof of stake velocity algorithm, a proof of elapsed time algorithm, a practical Byzantine fault tolerance algorithm, a simplified Byzantine fault tolerance algorithm, a delegated Byzantine fault tolerance algorithm, a proof of activity algorithm, a proof of authority algorithm, a proof of reputation algorithm, a proof of history algorithm, a proof of importance algorithm, a proof of capacity algorithm, a proof of burn algorithm, a proof of weight algorithm, and/or other suitable consensus algorithms, techniques, and/or mechanisms.

Incentives may permit the different entities (e.g., miners, etc.) to help run the blockchain by providing nodes incentives for their actions. There may be an incentive for every entity that is participating in the functionality of the network. Information may also be critical to the blockchain. As the blockchain is decentralized, considerable amounts of information may need to be in the blockchain network.

The blockchain governance structure may ensure that the blockchain can function efficiently and seamlessly while in active development by developers. The blockchain governance may rely on four central communities to manage the blockchain governance, including the core developers, the node operators, the token holders, and the blockchain team. The core developers may be responsible for developing, managing, and maintaining the core code of the blockchain. The core developers may write, update, or remove code that has a direct impact on the blockchain's functionality and, thereby, can impact every enterprise in the blockchain network. The node operators may be responsible for carrying the blockchain ledger full copy. The node operators may run operations from their computers and are responsible for deciding whether features will run on nodes or not. The node operators may also provide storage and computation for the blockchain operations. Code developers may need to consult the node operators before the code developers decide on any features. The token holders may be the enterprises that are part of the blockchain network by holding blockchain tokens. Token holders may take part in the governance through voting rights when changes are made to the blockchain, including, for example, feature changes and set prices. In certain embodiments, token holders may also be investors having a certain token percentage that affects their voting position. The blockchain team may be an enterprise that has different roles to manage the blockchain, including, for example, funding, negotiation, and communication. The blockchain team may act as a mediator to negotiate for features between the token holders, the core developers, and node operators.

The permissioned blockchain infrastructure and the blockchain network of the present disclosure may require access to be part of the infrastructure and network. A control layer may run on top of the blockchain that governs the actions performed by the allowed enterprises. Compared to a public blockchain infrastructure, the permissioned blockchain infrastructure may offer better performance because of the limited number of nodes included in the infrastructure, which may remove unnecessary computations required to reach consensus in the infrastructure. Additionally, the permissioned blockchain infrastructure may include its own pre-determined nodes for validating the data transaction. In contrast to a public blockchain, the permissioned blockchain infrastructure may include a governance structure that requires less time to update the rules over the blockchain network. For example, the nodes included in the permissioned blockchain infrastructure may work together to accomplish updates over the blockchain faster than the nodes in a public blockchain that may work in opposition of each other. The permissioned blockchain infrastructure of the present disclosure may also restrict the consensus participants making a permissioned blockchain network highly configured and controlled by the enterprises in the network. The permissioned blockchain infrastructure of the present disclosure may enable a data transaction among enterprises (e.g., the enterprises 106, 108, 110) in the enterprise system 112.

Referring back to block 406, if the technical platform determines that an off-chain enterprise (e.g., one or more of the enterprises 122, 124, 126) possesses the requested data, the method 400 may advance to block 412 in which the technological platform may communicate to the oracle system 134 information regarding the enterprise possessing the requested data (e.g., the enterprise 122). For example, the technological platform may determine that the enterprise 122 possesses the solution to address the issue with the end user's cable internet service. The enterprise 106 (e.g., via the contact center system 114) may then transmit the request for data to the oracle system 134. In block 414, the oracle system 134 may transmit the request for data to the enterprise 122. In block 416, the enterprise 122 may transmit the requested data to the oracle system 134. In block 418, the system 100 may permit a data transaction between the enterprise 106 (e.g., via the contact center system 114) and the oracle system 134 utilizing a permissioned blockchain infrastructure. For example, the oracle 134 may share with the enterprise 106 the solution to address the issue with the end user's cable internet service. In some embodiments, the system 100 may execute the method 500 of FIG. 5 (or a portion thereof) as described in detail below in association with the method 400 of FIG. 4 .

In block 420, the system 100 (e.g., via the enterprise 106) may transmit the requested data received from the enterprise 108 or the oracle system 134 to the end user device 102 (e.g., via the application 120 or, more particularly, the personal bot system). For example, the enterprise 106 may share with the end user device 102 the solution to address the issue with the end user's cable internet service.

Although the blocks 402-420 are described in a relatively serial manner, it should be appreciated that various blocks of the method 400 may be performed in parallel in some embodiments.

Referring now to FIG. 5 , in use, the system 100 may execute a method 500 for conducting a data transaction between enterprises using a permissioned blockchain infrastructure. It should be appreciated that the particular blocks of the method 500 are illustrated by way of example, and such blocks may be combined or divided, added or removed, and/or reordered in whole or in part depending on the particular embodiment, unless stated to the contrary. Prior to execution of the method 500, it should be appreciated that an end user may interact with the end user device 102 via a user interface of the application 120 (e.g., the personal bot system and/or a graphical user interface) in order to communicate a request for data to an enterprise (e.g., the system 100, via the end user device 102, may receive a request for data).

The system 100 (e.g., via the enterprise 106 or, more specifically in some embodiments, the contact center system 114 of the enterprise 106) may receive the request for data from the end user device 102 (e.g., via the application 120 or, more particularly, the personal bot system). The enterprise 106 (e.g., via the contact center system 114) may analyze the request for data, may determine that the enterprise 106 does not possess the requested data, may determine that enterprise 108 possesses the requested data among the enterprises included in the enterprise system, and may transmit the request for data to the enterprise 108. It should be that the system 100 may utilize any suitable blockchain technology to perform the method 500 of FIG. 5 and, therefore, one or more of the blocks of the method 500 may be varied based on aspects associated with the particular blockchain technology.

The illustrative method 500 begins with block 502 in which the system 100 (e.g., via the enterprise 108 or, more specifically, the contact center system 116) may receive a request for a data transaction from an enterprise (e.g., via the enterprise 106 or, more specifically, the contact center system 114). A node may initiate a data transaction and may sign the data transaction with its private key. In some embodiments, a node may be a computing device 300. Nodes may form the infrastructure of the blockchain. For example, the nodes on the blockchain may be connected to each other and may constantly exchange the latest blockchain data. In some embodiments, the nodes may store, transmit, and preserve the blockchain data. In some embodiments, the private key may generate a unique digital signature ensuring that no entity can alter the signature.

In block 504, a block representing the data transaction may be created in the blockchain network. In block 506, the data transaction may be published to each node in the blockchain network. In block 508, each node in the blockchain network may verify whether the data transaction is valid or not (i.e., validate the data transaction). In some embodiments, the nodes in the blockchain network may use one or more consensus algorithms to validate the transaction. For example, the nodes in the blockchain network may use one or more of the suitable consensus algorithms, techniques, and/or mechanisms described above in reference to the method 400 of FIG. 4 . In block 510, the blockchain network may determine whether consensus has been reached among the nodes in the blockchain network. If the blockchain network determines that consensus has been reached among the nodes in the blockchain network, the method 500 may advance to block 512 in which the blockchain network may add the block to the blockchain. The block may include a timestamp and unique identification to secure the block from alteration. If the blockchain network determines that consensus has not been reached among the nodes in the blockchain network, the method 500 may terminate (e.g., such that the data transaction will be unsuccessful). In block 514, the blockchain network may label the data transaction as successful and update each node in the blockchain network with the block (e.g., the requested data may be provided to the enterprise 106 by the enterprise 108). When the block is added to the blockchain, the block may link itself to the previous block in the blockchain. When the next new block arrives at the blockchain network, the next new block will cryptographically link itself to the block added in block 512 of FIG. 5 .

Although the blocks 502-514 are described in a relatively serial manner, it should be appreciated that various blocks of the method 500 may be performed in parallel in some embodiments. After execution of the method 500, it should be appreciated that the system 100 (e.g., via the enterprise 106) may transmit the requested data received from the enterprise 108 to end user device 102 (e.g., via the application 120 or, more particularly, the personal bot system).

Referring now to FIG. 6 , a blockchain architecture includes a partial blockchain 600 including a genesis block 602, a block k 604, and a block k+1 606. It should be appreciated that the blocks 602, 604, 606 illustrated in the blockchain 600 may include only a portion of the full blockchain 600, such that one or more additional blocks may be included between the genesis block 602 and the block k 604 (e.g., represented by the ellipsis). If the blockchain 600 includes only the three blocks 602, 604, 606, then the genesis block 602 may also be described as the block k−1. As described herein, blockchains (e.g., the blockchain 600) include transactions that are recorded/saved to the respective blocks and ordered in chronological order. As such, the blocks of the blockchain 600 may be timestamped.

Each of the blocks in the illustrative blockchain 600 includes a transaction and a hash of the previous block's header (e.g., previous block to be added to the blockchain 600 chronologically). For example, the genesis block 602 includes the transaction 608, the block k 604 includes a hash 610 of the previous block header (i.e., the header of block k−1, not shown) and a transaction 612, and the block k+1 606 includes a hash 614 of the previous block header (i.e., the header of the block k 604) and a transaction 616. Because the genesis block 602 is the first block on the blockchain 600 and therefore not “linked” to a previous block on the blockchain 600, the genesis block 602 does not include a hash of a previous block header. Instead, in some embodiments, the location on the block reserved for the hash of the previous block header may be set to zero (or another predefined value) on the genesis block 602.

It should be appreciated that the transactions of the blockchain 600 (e.g., the transactions 608, 612, 616, etc.) may record various interactions and/or events occurring within the system 100. For example, such interactions/events may include interactions between an end user (or other person) and an enterprise 106, 108, 110, interactions between the various enterprises 106, 108, 110 within the system, events occurring within a particular enterprise 106, 108, 110, and/or other relevant interactions/events within the system 100. By way of example, one or more of the transactions may include data indicating that an end user (e.g., customer) reported a loss of network connection with an internet service provider, an end user booked an international trip to another country, an end user provided feedback regarding satisfaction with a particular enterprise agent, an end user shared specific preferences with an enterprise 106, 108, 110 (e.g., an airline), an enterprise 106, 108, 110 shared data (e.g., user data) with another enterprise 106, 108, 110, an enterprise 106, 108, 110 saved new interests about an end user or other person, and/or other relevant information.

It should be appreciated that the data transfer and/or interactions may be initiated by an end user's interaction with personal bots, various enterprise touch points (e.g., email chat, website searches, survey feedback, phone, messengers, applications, social media conversations, etc.), end user IoT device data/activity (e.g., an IoT device indicating that mechanical equipment may need service), and/or otherwise.

Referring now to FIG. 7 , a blockchain architecture includes a partial blockchain 700 including a genesis block 702, a block k 704, and a block k+1 706. It should be appreciated that the blocks 702, 704, 706 illustrated in the blockchain 700 may include only a portion of the full blockchain 700, such that one or more additional blocks may be included between the genesis block 702 and the block k 704 (e.g., represented by the ellipsis). If the blockchain 700 includes only the three blocks 702, 704, 706, then the genesis block 702 may also be described as the block k−1.

Each of the blocks in the illustrative blockchain 700 includes a transaction root and a hash of the previous block's header (e.g., previous block to be added to the blockchain 700 chronologically). For example, the genesis block 702 includes the transaction root 708, the block k 704 includes a hash 710 of the previous block header (i.e., the header of block k−1, not shown) and a transaction root 712, and the block k+1 706 includes a hash 714 of the previous block header (i.e., the header of the block k 704) and a transaction root 716. Because the genesis block 702 is the first block on the blockchain 700 and therefore not “linked” to a previous block on the blockchain 700, the genesis block 702 does not include a hash of a previous block header. Instead, in some embodiments, the location on the block reserved for the hash of the previous block header may be set to zero (or another predefined value) on the genesis block 702.

It should be appreciated that multiple transactions may be stored to a particular block of a blockchain (e.g., the blockchain 700) in some embodiments. For example, as depicted in FIG. 7 , the blockchain 700 includes transactions 718 (T_(X) ₁ , T_(X) ₂ , . . . , T_(X) _(n) ) included in or otherwise linked to the transaction root 708 of the genesis block 702, transactions 720 (T_(X) ₁ , T_(X) ₂ , . . . ,T_(x) _(n) ) included in or otherwise linked to the transaction root 712 of the block 704 (with timestamp k), and transactions 722 (T_(X) ₁ , T_(X) ₂ , . . . , T_(X) _(n) ) included in or otherwise linked to the transaction root 716 of block (with timestamp k+1). In particular, in some embodiments, a blockchain (e.g., the blockchain 700) may group transactions based on the interval/timestamp as Merkle trees within a block. For example, the transactions 720 may include all transactions (or all of a particular type of transaction) between timestamps i−1 and i, and the transactions 722 may include all transactions (or all of a particular type of transaction) between timestamps i and i+1. Further, in some embodiments, the transactions may be grouped based on the customer/user identity. For example, a particular block may record all transactions related to a particular customer/user occurring between two timestamps. Such implementations may serve to save space and still preserve the authenticity of transactions in each block.

In some embodiments, the blockchains described herein may include smart contracts, which the system 100 may leverage to self-execute and perform various functions (e.g., automated transact across enterprise devices in the system 100). It should be appreciated that a smart contract may be embodied as computer-executable code stored in a blockchain and configured to self-execute by the nodes of the blockchain system based on various conditions/terms defined by the respective smart contract. Accordingly, smart contracts may be stored to a blockchain and executed by the blockchain nodes automatically and without discretion of the nodes, and the smart contract is therefore distributed and immutable. The particular conditions/terms associated with execution of various functions can be anything depending on the particular smart contract and context of the relationships involved. The smart contracts may be executing on each of the nodes in the blockchain network continuously to monitor for the satisfaction of the various conditions described therein, and may involve primitive and/or sophisticated tasks depending on the particular embodiment. In some embodiments, a data sharing scenario may involve a data requestor (e.g., the enterprise that needs some specific customer/user data), a data provider (e.g., the enterprise that “owns” the required data), and a transaction facilitator (e.g., an entity/person that writes smart contracts over a permissioned blockchain or non-permissioned blockchain). It should be appreciated that the system 100 may use the blockchain architectures of FIGS. 6-7 in conjunction with one or more of the techniques described herein.

Referring now to FIG. 8 , a smart contract architecture 800 includes an event listener 802, an action generator 804, and penalties 806. As described above, smart contracts may be added to blockchains in order to automatically monitor various conditions and perform various functions. In some embodiments, a smart contract may be described as self-executing computer-executable code that includes conditions that are monitored and actions performed based on the evaluation of those conditions. In particular, the event listener 802 may listen to the underlying blockchain for one or more particular events to occur and, if so, the action generator 804 causes one or more corresponding actions to execute (e.g., with respect to the blockchain and/or otherwise). In some embodiments, the event listener 802 may determine that one or more penalties 806 should be imposed/enforced in which case penalty code may be automatically executed to enforce the penalties. Although the smart contract architecture 800 includes penalties 806, in some embodiments, a particular smart contract may not include any penalties.

Referring now to FIG. 9 , in use, the system 100 may execute a method 900 for conducting a data transaction between enterprises using a smart contract. It should be appreciated that the particular blocks of the method 900 are illustrated by way of example, and such blocks may be combined or divided, added or removed, and/or reordered in whole or in part depending on the particular embodiment, unless stated to the contrary.

The method 900 begins with block 902 in which the system 100 or, more specifically, a particular node of the blockchain network executes one or more smart contracts stored on a blockchain. For example, in some embodiments, each of the nodes of the blockchain network may automatically and indiscriminately execute each of the smart contracts to ensure that the terms of the smart contracts are self-executing, distributed, and immutable. As described above, the smart contracts may include one or more events that result in the performance of various actions. Accordingly, if the node determines in block 904 that such an event has occurred, the method 900 advances to block 906 in which the smart contract (or more precisely the node executing the smart contract) executed an action associated with the event occurrence.

As described above, in some embodiments, the smart contracts may identify various penalties associated with the occurrence of a particular event (e.g., breach of the smart contract). Accordingly, if the smart contract (or more precisely the node executing the smart contract) determines in block 908 that breach of the smart contract has occurred (e.g., satisfaction of a condition resulting in penalties), the method 900 advances to block 910 in which one or more penalties are imposed. In block 912, the node (and other nodes also executing the smart contracts) updates the blockchain. In some embodiments, in block 914, one or more conditions may result in the smart contract being removed or disabled from the blockchain (e.g., via self-destruction).

Although the blocks 902-914 are described in a relatively serial manner, it should be appreciated that various blocks of the method 900 may be performed in parallel in some embodiments. For example, in some embodiments, the smart contract monitors for multiple conditions in parallel, including the occurrence of conditions that would constitute breach of the smart contract and/or otherwise impose penalties.

By way of example, suppose a customer, John, updates his address in his last interaction with First Bank. The interaction's insight may reach the blockchain. As such, the event listener of a smart contract may detect the event and from the code, identify the appropriate action to be triggered. For example, the action may be a subsequent interaction with Second Bank where John also holds an account in order to also update his address there. The execution of the smart contract may cause an interaction to be triggered between First Bank and Second Bank to share John's updated address and, once authenticated and approved, Second Bank may gain access to data owned by First Bank (e.g., including or limited to John's updated address) and change the address in its systems as well. As a follow-up, the smart contract may include code to notify John of the successful transaction, and the update may be published to the blockchain.

As another example, John may trigger an interaction with Airline to book a flight for a business trip. As before, the interaction's insight may reach the blockchain, and the event listener may detect the event and trigger and automatic interaction with Airline indicating that John's meal preferences may be obtained from Credit Card Company. Upon approval by Airline, an interaction with Credit Card Company may be automatically triggered to request John's international travel meal preferences. If agreed and validated, Airline may immediately gain access to the meal preferences in Credit Card Company's data regarding John, and it may update its own data. The transaction may be added to the blockchain and, in some embodiments, John may be notified of the successful transaction.

Referring now to FIG. 10 , a blockchain architecture includes a partial blockchain 1000 that implements one or more smart contracts includes a genesis block 1002, a block k 1004, and a block k+1 1004. It should be appreciated that the blocks 1002, 1004, 1006 illustrated in the blockchain 1000 may include only a portion of the full blockchain 1000, such that one or more additional blocks may be included between the genesis block 1002 and the block k 1004 (e.g., represented by the ellipsis). If the blockchain 1000 includes only the three blocks 1002, 1004, 1006, then the genesis block 1002 may also be described as the block k−1.

Each of the blocks in the illustrative blockchain 1000 includes a smart contract roothash and a transaction roothash. For example, the genesis block 1002 includes the smart contract roothash 1008 and the transaction roothash 1010, the block k 1004 includes the smart contract roothash 1012 and the transaction roothash 1014, and the block k+1 1006 includes the smart contract roothash 1016 and the transaction roothash 1018. As with the blockchain 700 of FIG. 7 , it should be appreciated that multiple transactions may be stored to a particular block of the blockchain 1000 of FIG. 10 . For example, as depicted in FIG. 10 , the blockchain 1000 includes transactions 1020 (T_(X) ₁ , T_(X) ₂ , . . . ,T_(X) _(n) ) included in or otherwise linked to the transaction root 1010 of the genesis block 1002, transactions 1022 (T_(X) ₁ , T_(X) ₂ , . . . , T_(X) _(n) ) included in or otherwise linked to the transaction root 1014 of the block 1004 (e.g., with timestamp k), and transactions 1024 (T_(X) ₁ , T_(X) ₂ , . . . , T_(X) _(n) ) included in or otherwise linked to the transaction root 1018 of block (e.g., with timestamp k+1). Further, in some embodiments, one or more smart contracts may be stored to the blocks of the blockchain 1000 and configured to automatically self-execute code and monitor for various conditions (e.g., with respect to interactions with the blockchain 1000) as described above. For example, as depicted in FIG. 10 , the blockchain 1000 includes smart contracts 1026 included in or otherwise linked to the smart contract roothash 1008, smart contracts 1028 included in or otherwise linked to the smart contract roothash 1012, and smart contracts 1030 included in or otherwise linked to the smart contract roothash 1016. Although omitted for illustration of other properties of the blockchain 1000, it should be further appreciated that each of the blocks of the blockchain 1000 may also include a hash of the previous block's header (e.g., previous block to be added to the blockchain 1000 chronologically). It should be appreciated that the system 100 may use the blockchain architecture of FIG. 10 in conjunction with one or more of the techniques described herein.

Referring now to FIG. 11 , an architecture 1100 for automatically completing data transactions using a permissioned blockchain infrastructure includes an end user device 102, smart contracts 1102, a mining server 1104, a blockchain 1106, an enterprise 106, and an enterprise 108. The end user device 102, the enterprise 106, and the enterprise 108 of FIG. 11 are described above in reference to FIG. 1 and, therefore, the descriptions of those components are not repeated herein for brevity of the description. The smart contracts 1102 of FIG. 11 may be embodied as one of and/or otherwise consistent with the description of the smart contracts described in reference to FIGS. 8-10 or a portion thereof. The blockchain 1106 may be embodied as a blockchain having properties consistent with the description of the blockchain described in reference to FIGS. 4-7 and/or otherwise described herein. The mining server 1104 may be embodied as any one or more types of devices/systems capable of mining data and otherwise performing the functions described herein. In some embodiments, the mining server 1104 may be embodied as or include a server that leverages one or more machine learning algorithms to ascertain patterns and/or relevant information related to the underlying data, which may be used to facilitate prediction of events. The smart contracts 1102 may function based on an activity/trigger in the mining server 1104 that may run “on top of” the blockchain 1106. The smart contracts 1102 may execute an action associated with each such activity/trigger, thereby, storing the execution results in the blockchain 1106.

Referring now to FIG. 12 , in use, the system 100 may execute a method 1200 for automatically completing data transactions using a permissioned blockchain infrastructure. It should be appreciated that the particular blocks of the method 1200 are illustrated by way of example, and such blocks may be combined or divided, added or removed, and/or reordered in whole or in part depending on the particular embodiment, unless stated to the contrary. Prior to execution of the method 1200, it should be appreciated that an end user may interact with the end user device 102 via a user interface of the application 120 (e.g., the personal bot system and/or a graphical user interface) in order to communicate a request for data to an enterprise (e.g., the system 100, via the enterprise 106, may receive a request for data). For example, an end user may communicate an intent to book a flight to an airline enterprise (e.g., the enterprise 106) via the application 120 (e.g., the personal bot system).

The illustrative method 1200 may begin with block 1202 in which the system 100 (e.g., via the enterprise 106 or, more specifically, the contact center system 114 of the enterprise 106) may receive the request for data from the end user device 102 (e.g., via the application 120 or, more particularly, the personal bot system). In some embodiments, the request for data may be generated by the end user device 102 utilizing the application 120 (e.g., the personal bot system). In some embodiments, the request for data may be generated by the end user device 102 utilizing at least one of an email, a chat, a website search, a survey feedback, a voice, or a social media conversation. In some embodiments, the end user device 102 may be an IoT device. For example, the IoT readings of an end user's air conditioner may generate an interaction with an enterprise that the end user's air conditioner compressor may have problems and may need service. The system 100 (e.g., via the enterprise 106) may transmit the requested data to the end user device 102 (e.g., via the application 120 or, more particularly, the personal bot system), thereby, completing a first data transaction. For example, the enterprise 106 may complete the booking of a flight with the end user device 102. The system 100 may store the first data transaction on the blockchain of the present disclosure. In some embodiments, in doing so, the system 100 may execute the method 500 of FIG. 5 (or a portion thereof) as described in detail below in association with the method 1200 of FIG. 12 .

In block 1204, they system 100 may determine whether an event associated with the first data transaction occurred at another enterprise (e.g., the enterprise 108) by using a mining server to automatically retrieve the first data transaction in response to identifying the event. If the system 100 determines that an event associated with the first data transaction occurred, the method 1200 may advance to block 1206 in which the system 100 may automatically retrieve the first data transaction. However, if the system 100 determines that an event associated with the first data transaction did not occur, the method 1200 may return to block 1202 (or wait until a relevant event has occurred). In block 1208, the system 100 (e.g., the enterprise 108) may automatically complete a second data transaction. For example, an internet commerce retail enterprise (e.g., the enterprise 108) may automatically notify a delivery service that the end user is not home based on the end user's flight booking as retrieved by the mining server in order to automatically reschedule delivery of a retail product). In some embodiments, the system 100 may communicate with the end user device 102 (e.g., via the application 120 or, more particularly, the personal bot system) to assist with completing the second data transaction. For example, the system 100 may determine the GPS location of the end user device 102 by accessing the application 120 (e.g., the personal bot system) of the end user device 102. In some embodiments, the system 100 (e.g., the enterprise 106) may communicate with the oracle system 134 to automatically request data from an off-chain enterprise (e.g., the enterprise 122) to complete the second data transaction. For example, the system 100 may locate a taxi cab's position by accessing the internal RFID tag of the taxi cab or the system 100 may review the weather in a particular location to determine the waiting time for an end user that booked a cab via a mobile application).

Although the blocks 1202-1208 are described in a relatively serial manner, it should be appreciated that various blocks of the method 1200 may be performed in parallel in some embodiments. After execution of the method 1200, it should be appreciated that the system 100 may store the second data transaction on the blockchain of the present disclosure. In some embodiments, in doing so, the system 100 may execute the method 500 of FIG. 5 (or a portion thereof) as described in detail below in association with the method 1200 of FIG. 12 .

Referring now to FIG. 13 , in use, the system 100 may execute a method 1300 for personalizing a message based on secure user data. It should be appreciated that the particular flows of the method 1300 are illustrated by way of example, and such flows may be combined or divided, added or removed, and/or reordered in whole or in part depending on the particular embodiment, unless stated to the contrary.

The illustrative method 1300 of FIG. 13 depicts an enterprise 1302, an end user device 1304, and a secure data store 1306. It should be appreciated that, in some embodiments, the enterprise 1302 may be embodied as the enterprise 106 of FIG. 1 (or an enterprise similar to the enterprise 106), and therefore the details of the enterprise 1302 have not been repeated herein for brevity of the description. Similarly, the end user device 1304 may be embodied as the end user device 102 of FIG. 1 (or an end user device similar to the end user device 102), and the secure data store 1306 may be embodied as the secure data store 136 (or a secure data store similar to the secure data store 136). As such, the details of the end user device 1304 and the secure data store 1306 have likewise not been repeated herein for brevity of the description. It should be further appreciated that one or more of the transactions (e.g., every transaction) described in reference to the method 1300 of FIG. 13 may be stored to a blockchain associated with the blockchain network (e.g., of the enterprise system 112). Accordingly, every transaction may be logged in a tamper-proof distributed ledger in order to ensure the integrity of the data.

The method 1300 begins with flow 1310 in which the enterprise 1302 and the end user device 1304 have an interaction. For example, in some embodiments, the enterprise 1302 (e.g., an airline company) may request the user's preferences for suggesting personalized deals or other targeted information to the user. In another embodiment, the user may be searching for packages offered by the enterprise to book his next trip to Hawaii. As described above, it should be appreciated that the requested and/or relevant data may involve data stored in and/or otherwise associated with the software wallet 138 of the user.

In flow 1312, the user is notified of the request for the user data and prompts the user for authorization of the enterprise device 1302 to access/receive the user data. In some embodiments, it should be appreciated that one or more blocks stored on a blockchain network may result in self-execution of computer-executable code (e.g., a smart contract) that causes the user to be notified. The user may be notified of the request, for example, via a graphical user interface of the application 120 and/or the software wallet 138 of the end user device 1304. For example, the graphical user interface may notify the user of the access request and prompt the user to allow or restrict the request (e.g., via corresponding graphical elements). In some embodiments, it should be appreciated that the user may be prompted for authorization via the personal bot system of the end user device 1304.

In flow 1314, the user opts to allow or restrict the request (e.g., via user input), which the end user device 1304 receives and processes. If the user authorizes the access request, in flow 1316, the end user device 1304 obtains the requested user data (e.g., user preferences, identification information, etc.) from the secure data store 1306. For example, as described herein, the secure data store 1306 may be accessed via the software wallet 138 and/or the application 120 of the end user device 1304. If the access request is not authorized (i.e., restricted), the end user device 1304 may deny the request, transmit a denial/error message to the enterprise 1302, and/or perform one or more other error handling procedures. In flow 1318, the end user device 1304 transmits the retrieved user data to the requesting enterprise 1302. In some embodiments, in flow 1320, the end user device 1034 may earn a reward for participating in the sharing of the user data. In flow 1322, the enterprise 1302 transmits personalized messaging (e.g., one or more user-personalized messages) to the end user device 1304 based on the user data. For example, the personalized messaging could include personalized offers/deals based on the user preferences and/or other user-targeted information.

Although the flows 1302-1322 are described in a relatively serial manner, it should be appreciated that various flows of the method 1300 may be performed in parallel in some embodiments.

As described above, in some embodiments, the user may interact with one or more enterprises via a personal bot of the end user device 102. Additionally, in some embodiments, the personal bots may serve as endpoints for notifications intended for the end users. Further, the personal bots may predict and auto-trigger various authentication protocols (see, for example, the method 1400 of FIG. 14 ) and/or enable access to multi-signature software wallets (see, for example, the method 1500 of FIG. 15 ).

Referring now to FIG. 14 , in use, the system 100 may execute a method 1400 for facilitating interactions between enterprises and software wallets of a user. It should be appreciated that the particular blocks of the method 1400 are illustrated by way of example, and such blocks may be combined or divided, added or removed, and/or reordered in whole or in part depending on the particular embodiment, unless stated to the contrary.

The method 1400 begins with block 1402 in which the end user interacts with an enterprise (e.g., the enterprise 106). In block 1404, the enterprise with which the user has interacted (e.g., the enterprise 106) transmits an authentication request to the user's personal bot (e.g., at the end user device 102). In block 1406, the user's personal bot determines whether the user has enabled automated authentication by the bot on the user's behalf (e.g., via settings in the software wallet 138). If the user has not authorized automated authentication, the method 1400 advances to block 1408 in which the personal bot (e.g., the end user device 102) transmits an authentication request to the end user. For example, in some embodiments, the end user device 102 may prompted to allow/restrict the request via a graphical user interface in a manner similar to that described above (see, for example, flow 1312 of FIG. 13 ).

Returning to block 1406, if the user has authorized automated authentication, the method 1400 advances to block 1410 in which the user's personal bot authenticates the authentication request with user data. For example, in some embodiments, the user's personal bot may authenticate the request based on user data and/or settings stored in or defined by the user's software wallet 138. In block 1412, the personal bot (e.g., the end user device 102) transmits the authentication result to the requesting enterprise (e.g., the enterprise 106) and, in block 1414, the enterprise and/or the end user device 102 notifies the end user of the authentication result (e.g., authenticated or denied).

Although the blocks 1402-1414 are described in a relatively serial manner, it should be appreciated that various blocks of the method 1400 may be performed in parallel in some embodiments.

It should be appreciated that a user's personal bot and/or the software wallet 138 may be used for other circumstances in a manner similar to the various techniques described herein. For example, the user's personal bot and/or software wallet 138 may be used to have the personal bot automatically reuse data collected from one enterprise for interactions with another (i.e., if authorized to do so). Further, in some embodiments, the user's personal bot and/or software wallet 138 may be used for automated completion of forms, documents, and/or webpages using details from the user's software wallet 138.

Referring now to FIG. 15 , in use, the system 100 may execute a method 1500 for blockchain-based multi-signature authentication. It should be appreciated that the particular flows of the method 1500 are illustrated by way of example, and such flows may be combined or divided, added or removed, and/or reordered in whole or in part depending on the particular embodiment, unless stated to the contrary.

The illustrative method 1500 of FIG. 15 depicts an end user device 1502, a software wallet provider 1504, and an enterprise 1506. It should be appreciated that, in some embodiments, the end user device 1502 may be embodied as the end user device 102 of FIG. 1 (or an end user device similar to the end user device 102), and therefore the details of the end user device 1502 have not been repeated herein for brevity of the description. Similarly, the enterprise 1506 may be embodied as the enterprise 106 of FIG. 1 (or an enterprise similar to the enterprise 106), and therefore the details of the enterprise 106 have likewise not been repeated herein for brevity of the description. The software wallet provider 1504 may be embodied as any type of system or device capable of performing the functions described herein. In some embodiments, the software wallet provider 1504 may be embodied as one or more of the devices described in reference to the system 100 of FIG. 1 .

It should be appreciated that the techniques described herein utilize multi-signature wallets that can securely and safely authenticate a user's identity with any number of enterprises 106, 108, 110 in the blockchain network. The multi-signature wallet described herein adds another layer of security to the process of authentication. In the illustrative embodiment of FIG. 15 , the multi-signature authentication involves the use of two private cryptographic keys (selected from three private cryptographic keys) and one public cryptographic key for the authentication algorithm. Further, the method 1500 of FIG. 15 assumes that a key exchange has occurred to ensure that the relevant cryptographic keys are already stored on the appropriate devices/components. In particular, as shown, the illustrative end user device 1502 has stored thereon two private cryptographic keys (Private Key A and Private Key B), the software wallet provider 1504 has stored thereon one private cryptographic key (Private Key C), and the enterprise 1506 has stored thereon the corresponding public cryptographic key (Public Key). In some embodiments, one of the private cryptographic keys stored to the end user device 1502 (e.g., the Private Key B) may serve as a backup key for the user in the event that the other key (e.g., the Private Key A) is lost or becomes inoperable (e.g., due to data corruption or deletion).

The method 1500 begins with flow 1510 in which the enterprise 1506 transmits a data request for user data stored in a software wallet 138 to the software wallet provider 1504. In flow 1512, the software wallet provider 1504 creates a corresponding authorization request and transmits the authorization request to the end user device 1502 (e.g., the application 120, personal bot, and/or other application) associated with the request. In flow 1514, the end user device 1502 prompts the user to authorize the request. For example, in some embodiments, the end user device 1502 may prompt the user to allow/restrict the request via a graphical user interface in a manner similar to that described above (see, for example, flow 1312 of FIG. 13 and/or block 1408 of FIG. 14 ).

In flow 1516, the end user device 1502 creates a transaction signed with one of the private cryptographic keys stored thereon (e.g., Private Key A) to generate a signed (or partially signed) transaction and, in flow 1518, the end user device 1502 transmits the signed transaction to the software wallet provider 1504. In flow 1520, the software wallet provider 1504 signs the signed (or partially signed) transaction with the private cryptographic key stored thereon (e.g., Private Key C) to generate a multi-signed transaction and, in flow 1522, the multi-signed transaction is transmitted to the enterprise 1506.

In flow 1524, the enterprise 1506 validates the multi-signed transaction using the public cryptographic key stored thereon (e.g., the Public Key) associated with the private cryptographic keys used to generate the multi-signed transaction (e.g., Private Key A and Private Key C). It should be appreciated that the particular cryptographic algorithm(s) used to generate the cryptographic keys and perform the multi-signature authentication may vary depending on the particular embodiment. For example, in some embodiments, the multi-signed transaction is validated using a 2-of-3 multi-signature blockchain algorithm, which requires two of three valid private cryptographic keys to be used to sign the transaction in order for it to be successfully authenticated by the corresponding public cryptographic key. In other words, in the illustrative embodiment, the Public Key stored on the enterprise 1506 would be able to successfully authenticate both (i) a transaction signed by the Private Key A and the Private Key C and (ii) a transaction signed by the Private Key B and the Private Key C.

In flow 1526, the enterprise 1506 approves the multi-signed transaction if the public key of the enterprise is able to successfully authenticate the signatures. Accordingly, the requested data may be transmitted to the enterprise 1506, and the transaction may be added to the relevant blockchain.

Although the flows 1502-1526 are described in a relatively serial manner, it should be appreciated that various flows of the method 1500 may be performed in parallel in some embodiments. It should be further appreciated that one or more of the transactions described in reference to the method 1500 of FIG. 15 may be embodied as a blockchain transactions and, therefore, the transactions may be stored to one or more blocks on a blockchain in the system 100 in a manner similar to that described herein at one or more points during the execution of the method 1500 of FIG. 15 .

Although the authentication of FIG. 15 is described in reference to authorizing access to data, it should be appreciated that the user may also be able to revoke permissions given to a particular enterprise (e.g., automatically via an interaction and/or manually via settings in the software wallet 138). Further, in some embodiments, the techniques described herein may be used for personalized customer service, personalized marketing, synchronous authentication, asynchronous authentication, and/or other use cases. 

What is claimed is:
 1. A method of blockchain-based multi-signature authentication, the method comprising: transmitting, by an enterprise system, a data request for user data stored in a software wallet to a software wallet provider; transmitting, by the software wallet provider, an authorization request to an end user device of the user in association with the data request; creating, by the end user device, a transaction signed with a first private cryptographic key to generate a signed transaction, wherein creating the transaction signed with the first private cryptographic key comprises selecting the first private cryptographic key from a set of two private cryptographic keys stored on the end user device in association with the software wallet, the set of two private cryptographic keys including the first private cryptographic key and a third private cryptographic key; transmitting, by the end user device, the signed transaction to the software wallet provider; signing, by the software wallet provider, the signed transaction with a second private cryptographic key to generate a multi-signed transaction; transmitting, by the software wallet provider, the multi-signed transaction to the enterprise system; and validating, by the enterprise system, the multi-signed transaction using a public cryptographic key associated with the first private cryptographic key and the second private cryptographic key, wherein validating the multi-signed transaction comprises validating the multi-signed transaction using a 2-of-3 multi-signature blockchain algorithm.
 2. The method of claim 1, wherein the public cryptographic key is able to validate a signed transaction involving (i) the second private cryptographic key and (ii) either of the first private cryptographic key or the third private cryptographic key.
 3. The method of claim 1, wherein the transaction comprises a blockchain transaction.
 4. The method of claim 1, wherein the end user device comprises a mobile application configured to provide a secure endpoint for interactions with the software wallet.
 5. The method of claim 1, wherein the enterprise system comprises a contact center system.
 6. A system of blockchain-based multi-signature authentication, the system comprising: at least one processor; and at least one memory comprising a plurality of instructions stored thereon that, in response to execution by the at least one processor, causes the system to: transmit, by an enterprise system, a data request for user data stored in a software wallet to a software wallet provider; transmit, by the software wallet provider, an authorization request to an end user device of the user in association with the data request; create, by the end user device, a transaction signed with a first private cryptographic key to generate a signed transaction, wherein to create the transaction signed with the first private cryptographic key comprises to select the first private cryptographic key from a set of two private cryptographic keys stored on the end user device in association with the software wallet, the set of two private cryptographic keys including the first private cryptographic key and a third private cryptographic key; transmit, by the end user device, the signed transaction to the software wallet provider; sign, by the software wallet provider, the signed transaction with a second private cryptographic key to generate a multi-signed transaction; transmit, by the software wallet provider, the multi-signed transaction to the enterprise system; and validate, by the enterprise system, the multi-signed transaction using a public cryptographic key associated with the first private cryptographic key and the second private cryptographic key, wherein to validate the multi-signed transaction comprises to validate the multi-signed transaction using a 2-of-3 multi-signature blockchain algorithm.
 7. The system of claim 6, wherein the public cryptographic key is able to validate a signed transaction involving (i) the second private cryptographic key and (ii) either of the first private cryptographic key or the third private cryptographic key.
 8. The system of claim 6, wherein the transaction comprises a blockchain transaction.
 9. The system of claim 6, wherein the end user device comprises a mobile application configured to provide a secure endpoint for interactions with the software wallet.
 10. A method of blockchain-based data transparency, the method comprising: requesting, by an enterprise system, user data from an end user device based on an interaction of the enterprise system with the end user device that results in self-execution of computer-executable code on a block of a blockchain; prompting, by the end user device, the user for authorization of the enterprise system to receive the user data; retrieving, by the end user device, the user data from a secure data store in response to authorization of the enterprise system to receive the user data; creating, by the end user device, a transaction signed with a first private cryptographic key to generate a signed transaction, wherein creating the transaction signed with the first private cryptographic key comprises selecting the first private cryptographic key from a set of two private cryptographic keys stored on the end user device in association with a software wallet, the set of two private cryptographic keys including the first private cryptographic key and a third private cryptographic key; signing the signed transaction with a second private cryptographic key to generate a multi-signed transaction; transmitting the multi-signed transaction to the enterprise system; and validating, by the enterprise system, the multi-signed transaction using a public cryptographic key associated with the first private cryptographic key and the second private cryptographic key, wherein validating the multi-signed transaction comprises validating the multi-signed transaction using a 2-of-3 multi-signature blockchain algorithm.
 11. The method of claim 10, wherein the secure data store comprises the software wallet of the user.
 12. The method of claim 10, wherein the user data comprises one or more preferences of the user.
 13. The method of claim 10, further comprising transmitting, from the enterprise system to the end user device, at least one personalized message based on the user data received from the end user device.
 14. The method of claim 10, further comprising: receiving, by the end user device, user input indicating that the enterprise system is authorized to receive the user data in response to prompting the user; and wherein retrieving the user data from the secure data stored comprises retrieving the user data from the secure data store in response to receiving the user input indicating that the enterprise system is authorized to receive the user device.
 15. The method of claim 10, wherein the enterprise system comprises a contact center system.
 16. The method of claim 10, wherein prompting the user for authorization comprises prompting the user for authorization of the enterprise system to receive the user data via a personal bot system executed by the end user device. 